crypto pki application

Syntax

crypto pki applicationcertificateno crypto pki applicationcertificate

Description

Associates a leaf certificate with a feature (application) on the switch. By default, all features are associated with the default, self-signed certificatelocal-cert. This certificate is created by the switch the first time it starts.

Thenoform of this command associates the specified feature with the default certificate.

Command context

config

Parameters

Specifies the name of a feature on the switch:

  • captive-portal: Captive portal

  • est-client: EST client

  • hsc: Hardware switch controller.

  • https-server: HTTPS server.

  • radsec-client: RadSec client.

  • syslog-client: Syslog client.

Specifies the name of an installed leaf certificate.

Authority

Administrators or local user group members with execution rights for this command.

Examples

Associating the EST client with leaf certificateleaf-cert1:

switch(config)#crypto pki application est-client certificate leaf-cert1

将syslog客户机与leaf certificateleaf-cert:

switch(config)#crypto pki application syslog-client certificate leaf-cert
NOTE:

syslog-clientcommunicates with syslog server over TLS.

You can associate a certificate with thesyslog-clientapplication by enrolling the certificate manually or through EST.

Setting the syslog client to use the default certificate:

switch(config)#no crypto pki application syslog-client certificate

Setting the RadSec client to use the default certificate:

switch(config)#no crypto pki application radsec-client certificate

Associating the RadSec client with leaf certificateleaf-cert:

switch(config)#crypto pki application radsec-client certificate leaf-cert

Associating the HTTPS server with leaf certificateleaf-cert2:

switch(config)#crypto pki application https-server certificate leaf-cert2